DVA-C02 · Question #414
DVA-C02 Question #414: Real Exam Question with Answer & Explanation
Sign in or unlock DVA-C02 to reveal the answer and full explanation for question #414. The question stem and answer options stay visible for context.
Question
A company has an application that uses an Amazon S3 bucket for object storage. A developer needs to configure in-transit encryption for the S3 bucket. All the S3 objects containing personal data needs to be encrypted at rest with AWS Key Management Service (AWS KMS) keys, which can be rotated on demand. Which combination of steps will meet these requirements? (Choose two.)
Options
- AWrite an S3 bucket policy to allow only encrypted connections over HTTPS by using permissions
- BConfigure an S3 bucket policy to enable client-side encryption for the objects containing personal
- CConfigure the application to encrypt the objects by using an AWS KMS customer managed key
- DWrite an S3 bucket policy to allow only encrypted connections over HTTPS by using the
- EConfigure S3 Block Public Access settings for the S3 bucket to allow only encrypted connections
Unlock DVA-C02 to see the answer
You've previewed enough free DVA-C02 questions. Unlock DVA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.